Ensure that 'Restrict user ability to access groups features in the Access Pane' is Set to 'Yes'
Why This Matters
Self-service group management in Microsoft Entra ID allows users to create and manage security groups and Office 365 groups through the Access Panel. By default, users can view group details such as members, SharePoint URLs, and Teams URLs, which can expose sensitive organizational data to non-technical users. Restricting this feature minimizes the risk of group information enumeration by users who do not require it, though technical users retain API access.
What Aether365 Checks
Aether365 verifies that the setting "Restrict user ability to access groups features in the Access Pane" is configured to "Yes" in Microsoft Entra ID. This check appears in the Aether365 dashboard under Entra ID controls.
How to Fix
To remediate this setting in the Microsoft Entra admin center: